[Community-sigs] Win.Downloader
Arnaud Jacques / SecuriteInfo.com
webmaster at securiteinfo.com
Mon Jul 4 17:07:09 EDT 2016
Hello Xabier,
> We have created a
> signature that you can test over your dataset to check if it matches
> your binaries:
>
> Win.Downloader:1:*:66736F2E4F70656E5465787446696C652873332B225C5C6164645F6A7
> 32E6A73222C3129*76617220736F7572636532203D2066322E52656164416C6C2829*6576616
> C28736F7572636532293B*69662028747970656F662076203D3D3D2022737472696E67222026
> 26206B203D3D20226E616D65222026262076203D3D206E616D6529207B*4A534F4E2E7374726
> 96E67696679286D795F6F626A2C2066756E6374696F6E20286B65792C2076616C756529207B*
> 7661722066203D2066736F2E4F70656E5465787446696C652866696C655F706174682C32293B
> *662E5772697465286A736F6E5F656E636F646564293B*666F722028766172206B657920696E
> 206D795F6F626A2E726F6F74732E626F6F6B6D61726B5F6261722E6368696C6472656E29207B
> 0D0A2F2F09575363726970742E6563686F286B657929
Very good, your signature detects 74104 samples on my side.
--
Best regards,
Arnaud Jacques
SecuriteInfo.com
Facebook : https://www.facebook.com/pages/SecuriteInfocom/132872523492286
Twitter : @SecuriteInfoCom
More information about the Community-sigs
mailing list